Phish Email?

#0 - June 8, 2010, 4:35 a.m.

Ok so I'm usually pretty good about catching these and I believe this one is fake, but I would like to be sure.

Heading from the email

From:
"[email protected]" <[email protected]>

Greetings!

Recently, the problem of account invasion is getting worse and worse which cause enormous players’equipments and virtual currency stolen. This severely damages the benefits of mass players, also causes our company lose a lot of customers.

Our company has to adopt some measures to safeguard our common benefits in order to strengthen the safety of mass players'accounts, and firmly resist the account to be stolen again.Through our company's research and investigation to xxx customers,we will make the following decisions: we launch a package of updated code strengthen system and dynamic code protection card which can effectively prevent the accounts invaded. We will send this package of code protection system to players free of charge.

Please open this connection: http://www.worldofwarcraft.com/secure

If your account passes the check successfully, we will send this package of dynamic code protection card to you in the form of e-mail.

In 3 days after you receiving the e-mail, if you don't submit your information, we have right to freeze your account, every player is obligated to protect the safety of the account. You must work together with us to be determined to crack down all the behaviors of destroying games.

If you had already authenticator your account, please disregard this automatic notification.

Regards,

The World of Warcraft Support Team
Blizzard Entertainment
http://www.blizzard.com/support/wowindex/

The grammar mistakes and the "freeze account" is why I'm suspicious. Appreciate any feedback and help. I'll be forwarding this to the hacks email if it is indeed phishing nonsense.

Orlyia

#6 - June 8, 2010, 6:26 a.m.

Just to repeat what's been stated above...yes.

This is what is commonly referred to as a phish. That quite literally means someone is ‘fishing’ for information and hoping they get a bite :)

If you look at the top of this forum you’ll see a library of ones that are commonly used (or close variants thereof) under “Fake Emails from Blizzard”

http://forums.worldofwarcraft.com/thread.html?topicId=965511383&sid=1

The proper email to report these is [email protected] – you can forward the email, headers intact to that address.

Phishes rely on two primal human emotions and hope they get you to react before you think through what is being asked, greed and fear. They’ll either try to entice with an offer or intimidate with a threat.

We never ‘threaten’ an account action. If we have sufficient cause to think an account has been tampered with or needs locked down, we do it first – we don’t threaten with an ‘or else’ email.

WoW accounts are certainly not the only target of phishers. They send them out purporting to be banks, credit card companies, shipping companies – all aimed at obtaining information the thief can use to your detriment.

We will also NEVER ask for your password, or ask you to sign into some website somewhere not under our domain to login.

One way to check any email is to open up the header in your email program and check to see the actual route and sender. This is done in various ways, depending on your email program, but all can do it. Internal email addresses (what you see at the top of an email) can be spoofed very easily. Where it says it came from under sender is not necessarily true. The header of that email will show the true sender. Many spam programs actually use a comparison of these to flag suspicious emails.

Links in an email are also incredibly easy to spoof and/or redirect. Just because the URL looks legit doesn’t necessarily mean that’s where it really goes. Before clicking ANY link, in ANY email, mouse over the link and look at your bottom browser bar to see where it is reported to actually be destined.